Security Basics mailing list archives
Re: Collecting Malware
From: Geoffrey J Gowey <gjgowey () gmail com>
Date: Thu, 16 Jul 2009 13:19:07 -0700
If you're going to work with malware you should have your network disabled for the vm inside vmware. If you want to test with multiple vm's you could setup an internal network, but make sure your vmware host system isn't included on that network :)
Sent from my iPhoneOn Jul 16, 2009, at 10:34 AM, "Ian Bradshaw" <ian () ianbradshaw net> wrote:
Hi,I've never done it (I don't trust myself enough to be able to make sure it didn't infect other machines on the network; firewalled or not!), but if I was going to I'd setup a VMWare shell with a vulnerable machine and stickthings like RegMon(http://technet.microsoft.com/en-us/sysinternals/bb896652.aspx) or Process Monitor (http://technet.microsoft.com/en-us/sysinternals/ bb896645.aspx) on there. Given the amount of stuff my router picks up then it wouldn't take long for a vulnerable pc to fall victim - almost real-time I'd have thought!For spam ... register here http://www.projecthoneypot.org/ with some MX records ... leave it a week or so for them to propagate and then redirectthem to your own mail server / whatever. Although, it would be goodetiquette to leave them a couple of MX's spare for their trouble and thegeneral good of the world. I. -----Original Message-----From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] OnBehalf Of Brian Pohlman Sent: 16 July 2009 1:14 PM To: security-basics () securityfocus com Subject: Collecting Malware I'm looking to get "spammed" or "attacked" so to speak for the purpose of collecting malware for analysis. I've set up a few vulnerable machines on my network, made some changes to my router to expose those machines. I've also signed up for various email addresses in hopes that something comes (malicious attachments) through that way. My question is, what is the best way to collect malware, if there is even one solid method?--- ---------------------------------------------------------------------Securing Apache Web Server with thawte Digital CertificateIn this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digitalcertificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727 d1--- ------------------------------------------------------------------------ ---------------------------------------------------------------------Securing Apache Web Server with thawte Digital CertificateIn this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1--- ---------------------------------------------------------------------
------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- Collecting Malware Brian Pohlman (Jul 16)
- RE: Collecting Malware Ian Bradshaw (Jul 16)
- Re: Collecting Malware Geoffrey J Gowey (Jul 17)
- Re: Collecting Malware Mike Acker (Jul 16)
- Re: Collecting Malware r00t (Jul 16)
- Re: Collecting Malware Adam Pal (Jul 16)
- Re: Collecting Malware p3dRø (Jul 17)
- Re: Collecting Malware Aarón Mizrachi (Jul 17)
- RE: Collecting Malware Chris Firth (Jul 17)
- Re: Collecting Malware Brandon Gotch (Jul 27)
- Re: Collecting Malware 51l3n73y3s (Jul 27)
- Re: Collecting Malware r00t (Jul 29)
- Re: Collecting Malware 51l3n73y3s (Jul 27)
- RE: Collecting Malware Ian Bradshaw (Jul 16)